ApkCombiner: combining multiple Android apps to support inter-app analysis

Li Li, Alexandre Bartel, Tegawendé F. Bissyandé, Jacques Klein, Yves Le Traon

Research output: Chapter in Book/Report/Conference proceedingConference PaperResearch

44 Citations (Scopus)

Abstract

Android apps are made of components which can leak information between one another using the ICC mechanism. With the growing momentum of Android, a number of research contributions have led to tools for the intra-app analysis of Android apps. Unfortunately, these state-of-the-art approaches, and the associated tools, have long left out the security flaws that arise across the boundaries of single apps, in the interaction between several apps. In this paper, we present a tool called ApkCombiner which aims at reducing an inter-app communication problem to an intra-app inter-component communication problem. In practice, ApkCombiner combines different apps into a single apk on which existing tools can indirectly perform inter-app analysis. We have evaluated ApkCombiner on a dataset of 3,000 real-world Android apps, to demonstrate its capability to support static context-aware inter-app analysis scenarios.

Original languageEnglish
Title of host publicationICT Systems Security and Privacy Protection
Subtitle of host publication30th IFIP TC 11 International Conference, SEC 2015 Hamburg, Germany, May 26–28, 2015 Proceedings
EditorsHannes Federrath, Dieter Gollmann
Place of PublicationCham Switzerland
PublisherSpringer
Pages513-527
Number of pages15
ISBN (Electronic)9783319184678
ISBN (Print)9783319184661
DOIs
Publication statusPublished - 2015
Externally publishedYes
EventIFIP TC-11 SEC International Information Security and Privacy Conference 2015 - Hamburg, Germany
Duration: 26 May 201528 May 2015
Conference number: 30th
https://www.ifipsec.org/2015/

Publication series

NameIFIP Advances in Information and Communication Technology
PublisherSpringer
Number455
ISSN (Print)1868-4238
ISSN (Electronic)1868-422X

Conference

ConferenceIFIP TC-11 SEC International Information Security and Privacy Conference 2015
Abbreviated titleSEC 2015
CountryGermany
CityHamburg
Period26/05/1528/05/15
Internet address

Cite this

Li, L., Bartel, A., Bissyandé, T. F., Klein, J., & Le Traon, Y. (2015). ApkCombiner: combining multiple Android apps to support inter-app analysis. In H. Federrath, & D. Gollmann (Eds.), ICT Systems Security and Privacy Protection : 30th IFIP TC 11 International Conference, SEC 2015 Hamburg, Germany, May 26–28, 2015 Proceedings (pp. 513-527). (IFIP Advances in Information and Communication Technology; No. 455). Cham Switzerland: Springer. https://doi.org/10.1007/978-3-319-18467-8_34
Li, Li ; Bartel, Alexandre ; Bissyandé, Tegawendé F. ; Klein, Jacques ; Le Traon, Yves. / ApkCombiner : combining multiple Android apps to support inter-app analysis. ICT Systems Security and Privacy Protection : 30th IFIP TC 11 International Conference, SEC 2015 Hamburg, Germany, May 26–28, 2015 Proceedings. editor / Hannes Federrath ; Dieter Gollmann. Cham Switzerland : Springer, 2015. pp. 513-527 (IFIP Advances in Information and Communication Technology; 455).
@inproceedings{dcbe7545f325426fa4ce4e2e9949c6d8,
title = "ApkCombiner: combining multiple Android apps to support inter-app analysis",
abstract = "Android apps are made of components which can leak information between one another using the ICC mechanism. With the growing momentum of Android, a number of research contributions have led to tools for the intra-app analysis of Android apps. Unfortunately, these state-of-the-art approaches, and the associated tools, have long left out the security flaws that arise across the boundaries of single apps, in the interaction between several apps. In this paper, we present a tool called ApkCombiner which aims at reducing an inter-app communication problem to an intra-app inter-component communication problem. In practice, ApkCombiner combines different apps into a single apk on which existing tools can indirectly perform inter-app analysis. We have evaluated ApkCombiner on a dataset of 3,000 real-world Android apps, to demonstrate its capability to support static context-aware inter-app analysis scenarios.",
author = "Li Li and Alexandre Bartel and Bissyand{\'e}, {Tegawend{\'e} F.} and Jacques Klein and {Le Traon}, Yves",
year = "2015",
doi = "10.1007/978-3-319-18467-8_34",
language = "English",
isbn = "9783319184661",
series = "IFIP Advances in Information and Communication Technology",
publisher = "Springer",
number = "455",
pages = "513--527",
editor = "Federrath, {Hannes } and Gollmann, {Dieter }",
booktitle = "ICT Systems Security and Privacy Protection",

}

Li, L, Bartel, A, Bissyandé, TF, Klein, J & Le Traon, Y 2015, ApkCombiner: combining multiple Android apps to support inter-app analysis. in H Federrath & D Gollmann (eds), ICT Systems Security and Privacy Protection : 30th IFIP TC 11 International Conference, SEC 2015 Hamburg, Germany, May 26–28, 2015 Proceedings. IFIP Advances in Information and Communication Technology, no. 455, Springer, Cham Switzerland, pp. 513-527, IFIP TC-11 SEC International Information Security and Privacy Conference 2015, Hamburg, Germany, 26/05/15. https://doi.org/10.1007/978-3-319-18467-8_34

ApkCombiner : combining multiple Android apps to support inter-app analysis. / Li, Li; Bartel, Alexandre; Bissyandé, Tegawendé F.; Klein, Jacques; Le Traon, Yves.

ICT Systems Security and Privacy Protection : 30th IFIP TC 11 International Conference, SEC 2015 Hamburg, Germany, May 26–28, 2015 Proceedings. ed. / Hannes Federrath; Dieter Gollmann. Cham Switzerland : Springer, 2015. p. 513-527 (IFIP Advances in Information and Communication Technology; No. 455).

Research output: Chapter in Book/Report/Conference proceedingConference PaperResearch

TY - GEN

T1 - ApkCombiner

T2 - combining multiple Android apps to support inter-app analysis

AU - Li, Li

AU - Bartel, Alexandre

AU - Bissyandé, Tegawendé F.

AU - Klein, Jacques

AU - Le Traon, Yves

PY - 2015

Y1 - 2015

N2 - Android apps are made of components which can leak information between one another using the ICC mechanism. With the growing momentum of Android, a number of research contributions have led to tools for the intra-app analysis of Android apps. Unfortunately, these state-of-the-art approaches, and the associated tools, have long left out the security flaws that arise across the boundaries of single apps, in the interaction between several apps. In this paper, we present a tool called ApkCombiner which aims at reducing an inter-app communication problem to an intra-app inter-component communication problem. In practice, ApkCombiner combines different apps into a single apk on which existing tools can indirectly perform inter-app analysis. We have evaluated ApkCombiner on a dataset of 3,000 real-world Android apps, to demonstrate its capability to support static context-aware inter-app analysis scenarios.

AB - Android apps are made of components which can leak information between one another using the ICC mechanism. With the growing momentum of Android, a number of research contributions have led to tools for the intra-app analysis of Android apps. Unfortunately, these state-of-the-art approaches, and the associated tools, have long left out the security flaws that arise across the boundaries of single apps, in the interaction between several apps. In this paper, we present a tool called ApkCombiner which aims at reducing an inter-app communication problem to an intra-app inter-component communication problem. In practice, ApkCombiner combines different apps into a single apk on which existing tools can indirectly perform inter-app analysis. We have evaluated ApkCombiner on a dataset of 3,000 real-world Android apps, to demonstrate its capability to support static context-aware inter-app analysis scenarios.

UR - http://www.scopus.com/inward/record.url?scp=84942567722&partnerID=8YFLogxK

U2 - 10.1007/978-3-319-18467-8_34

DO - 10.1007/978-3-319-18467-8_34

M3 - Conference Paper

AN - SCOPUS:84942567722

SN - 9783319184661

T3 - IFIP Advances in Information and Communication Technology

SP - 513

EP - 527

BT - ICT Systems Security and Privacy Protection

A2 - Federrath, Hannes

A2 - Gollmann, Dieter

PB - Springer

CY - Cham Switzerland

ER -

Li L, Bartel A, Bissyandé TF, Klein J, Le Traon Y. ApkCombiner: combining multiple Android apps to support inter-app analysis. In Federrath H, Gollmann D, editors, ICT Systems Security and Privacy Protection : 30th IFIP TC 11 International Conference, SEC 2015 Hamburg, Germany, May 26–28, 2015 Proceedings. Cham Switzerland: Springer. 2015. p. 513-527. (IFIP Advances in Information and Communication Technology; 455). https://doi.org/10.1007/978-3-319-18467-8_34